Computer Science graduate from LUMS with a focus on cybersecurity and AI. Experienced in SOC operations, threat monitoring, and incident triage at Ebryx. Skilled in deploying custom SIGMA/YARA rules and conducting enterprise-level security audits. Passionate about building automated, AI-driven security frameworks.
Islamabad, Pakistan
Experience
Aug 2025 – Present
INTERNSHIP
Security Analyst Intern
Ebryx (Pvt.) Ltd.
Lahore (Hybrid)
Operated in SOC conducting real-time threat monitoring and incident triage; developed and deployed custom SIGMA/YARA detection rules integrated with ELK Stack and Wazuh, reducing manual alert review overhead. Led enterprise Cisco WLC wireless security audit using Nmap/NSE scripts; discovered 4 critical vulnerabilities including SWEET32, missing forward secrecy (no ECDHE/DHE), and deprecated TLS 1.0/1.1 configurations. Conducted wireless penetration testing with Aircrack-ng on Kali Linux; mapped deauthentication attack vectors across campus access points and recommended WPA3 + 802.11w migration as countermeasures.
•Operated in SOC conducting real-time threat monitoring and incident triage
•Developed and deployed custom SIGMA/YARA detection rules integrated with ELK Stack and Wazuh
•Led enterprise Cisco WLC wireless security audit using Nmap/NSE scripts
•Conducted wireless penetration testing with Aircrack-ng on Kali Linux
•Mapped deauthentication attack vectors across campus access points
Key Achievements
→Reduced manual alert review overhead through custom SIGMA/YARA rules
→Discovered 4 critical vulnerabilities including SWEET32, missing forward secrecy (no ECDHE/DHE), and deprecated TLS 1.0/1.1 configurations
→Recommended WPA3 + 802.11w migration as countermeasures for deauthentication attacks
Identified critical cryptographic weaknesses in enterprise Cisco infrastructure: SWEET32 vulnerability, absent ECDHE/DHE cipher suites, and active deprecated TLS 1.0/1.1 endpoints.
Cisco InfrastructureSWEET32ECDHE/DHETLS 1.0/1.1
ACADEMIC
Present
Privacy-First WiFi Sensing System
Signal Processing Researcher
Deployed WiFi-DensePose framework for camera-free human presence/motion detection via RSSI fluctuation analysis and signal variance computation. Engineered real-time data pipeline with WebSocket streaming to Three.js dashboard; roadmap includes CSI integration for full skeletal pose estimation.
WiFi-DensePoseRSSIWebSocketThree.js
PERSONAL
Present
n8n Security Automation Platform
Developer
Self-hosted n8n automation platform via Docker; built Telegram OCR bot with REST API integrations for automated security alert forwarding and data extraction pipelines.
n8nDockerTelegram APIREST APIOCR
PERSONAL
Present
AI-Driven Access Anomaly Detection Framework
Senior Capstone Student
Integrated ELK Stack/Wazuh SIEM with custom ML models for real-time unauthorized access detection, behavioral anomaly detection, and automated mitigation. Built centralized SOC monitoring dashboard with real-time alert visualization and automated incident response playbook integration.